United states Patent [i9] 

Gupta et al. 


US005485409A 

[11] Patent Number: 
[45] Date of Patent: 


I 

5,485,409 
Jan. 16, 1996 


[54] AUTOMATED PENETRATION ANALYSIS 
SYSTEM AND METHOD 

[75] Inventors: Sarbari Gupta, Rockville; Virgil D. 

Gligor, Chevy Chase, both of Md. 

[73] Assignee: International Business Machines 
Corporation, Annonk, N.Y. 

[21] Appl. No.: 875^45 
[22] Filed: Apr. 30, 1992 

[51] Int CL^ H04L 9/00; G06F 13/00 

[52] U.S. CI 395/186; 364/DIG. 1; 

364/286.4; 364/DIG. 2; 364/918.7; 395/600; 

380/4 

[58] Field of Search 364/580. 570, 

364/918.7, 949.81, 286.4, 286.5. 286.6, 
419; 395/50, 51, 61. 911, 912, 913, 914, 
915, 916, 917, 918, 725; 340/825.31, 825.34; 

380/4 

[56] References Cited 

U.S. PATENT DOCUMENTS 

4,649,515 3/1987 Hmmpson et al 395/911 X 

4.956.769 9/1990 Smith 364/200 . 

5,060,279 10/1991 Crawfoidetal 395/911 X 

5.099,436 3/1992 McCown el al 395/911 X 

5,133.063 7/1992 Naito et al 395/50 X 

5,161,245 11/1992 Fenwick 364/419 X 

5,197,004 3/1993 Sobotkaetal 364/419 

OTHER PUBUCAnONS 

Gupta et al.. *1bwaids a Theory of Penetration-Resistant 
Systems and its Applications", Proc of the 4th IEEE Work- 
shop on Computer Security Foundations. Franoonia, NJI., 
pp. 62-78. Jun. 1991. 


Jiang et al.. "Distributed System Secuiity Research at FSD 
Gailhersburg". IBM Document No. FSDSS-9202, Jan. 8. 
1992, 

Gupta et al., "Experience with a Penetartion Analysis 
Method and TboV*. U of MD, Electrical Engineering Depart- 
ment, Technical Report No. 2881, Apr. 1992. 
Tsai et al., ^'Distributed System and Security Management 
with Centralized Control", 1992 EurOpen/USENDC Work- 
shop, Jersey, U.K.. Apr. 6-9, 1992. 

Primary £xamin£r— Emanuel T. Vocltz 

Assistant Examner—^ic W. Stamber 

Attorney, Agent, or Firm-^lemt, Kessler, Goldstein & Fox 


[57] 


ABSTRACT 


The present invention provides a penetration-analysis 
method, which (1) provides a systematic approach to pen- 
etration analysis, (2) enables the verification of penetration- 
resistance properties, and (3) is amenable to automation. An 
Automated Penetration Analysis (APA) tool is provided, to 
support the penetradon analysis method. The penetration- 
analysis system and method is based on a theory of pen- 
etration-resistant coixq>uter systems,' a model of penetration 
analysis, and a unified representation of penetration patterns. 
The dieory consists of the Hypothesis of Penetration-Resis- 
tant Systems and a set of design properties that characterize 
resistance to penetratioiu The penetration-analysis model 
defines a set of states, a state-invariant for penetration 
resistance, and a set of rules that can be applied for analyzing 
the penetration vulnerability of a system. An interpretation 
of the Hypothesis of Penetration-Resistant Systems within a 
given system provides the Hypothesis of Penetration Pat- 
terns, which enables the present invention to define a unified 
representation for a large set of penetration instances as 
missing check patterns. 
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